To access the AWS Management Console, we need IAM users who can log in and access the Console in secure way.
For this, we have the following three major types of users:
- First time users (root account): This is the account with which we subscribed to the AWS services. It is also named the root account, and will have super admin privileges on all the services. You can access all the services without a prompt for user credentials once you are signed in to the Console. There are a few best practices associated with a root account:
- Do not allow the user root account to access AWS Console
- You must enable MFA for the root account
- Do not create access keys for root account
- Have a complex password for the root account
- Normal IAM users ...